
New Malware Steals Passwords Saved in Your Web Browser
Microsoft reports a rise in attacks using software that steals passwords you have saved in Chrome, Edge, and other browsers.
Source
BleepingComputer
Original headline: Microsoft warns of surge in ACR Stealer attacks on customers
Plain-English summary by GetCyberRight. Read the full report at the source above.
Microsoft has noticed a sharp increase in attacks using malware called ACR Stealer. This malicious software specifically targets information stored in web browsers, including saved passwords, login credentials, and sensitive documents. When it infects a computer, it can steal all the passwords you have saved in browsers like Chrome, Edge, Firefox, or Safari.
This threat primarily affects businesses and organizations that use Microsoft services, but families should pay attention too. If you save passwords in your web browser for sites like email, banking, shopping, or social media, this type of malware could steal all of them at once.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
The malware also grabs authentication tokens, which are digital keys that keep you logged into websites, and looks for important documents on your computer.
- Stop saving passwords directly in your web browser.
- Download a dedicated password manager like Bitwarden, 1Password, or Dashlane instead.
- Go through your browser settings and delete any saved passwords, then re-save them in your new password manager.
- Enable two-factor authentication on all important accounts, especially email and banking.
- Make sure your antivirus software is up to date and running.
- Be extremely careful about what you download and what links you click in emails. For long-term protection, never save passwords in your browser again. Password managers are much more secure and harder for malware to access. They also help you create stronger, unique passwords for every site. Teach everyone in your family to recognize phishing emails and suspicious downloads, since that is usually how this malware gets installed in the first place. Regular computer updates and good antivirus software provide essential protection against threats like this.
Curated from trusted cybersecurity sources by GetCyberRight
Source: BleepingComputerStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Critical WordPress Security Flaw Needs Immediate Fixing
If you run a WordPress website, hackers now have public tools to break into unpatched sites. Update your WordPress installation immediately.
2 min read
Critical WordPress Security Flaw Needs Immediate Attention from Website Owners
If you run a WordPress website, hackers now have tools to break in using a newly discovered flaw. Update your site immediately to stay protected.
2 min read
New Malware Is Stealing Passwords Saved in Your Web Browser
A type of malware called ACR Stealer is attacking businesses by grabbing passwords and personal data stored in web browsers like Chrome and Edge.
2 min read
New Defense Stops Malicious AI Tools Before They Can Cause Harm
Security researchers found a way to shut down harmful AI hacking tools. This is good news for protecting your accounts and personal information online.
2 min read